Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: Opera fixes the torrent vulnerability SANS ISC InfoSec Forums

Watch ISC TV. Great for NOCs, SOCs and Living Rooms: https://isctv.sans.edu

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Opera fixes the torrent vulnerability
Opera Software has released Opera 9.21. This version fixes a buffer overflow vulnerability that can be exploited with malicious torrent files and lead to arbitrary code execution. According to Opera’s advisory available at http://www.opera.com/support/search/view/860/, the vulnerability can be exploited only when the user right-clicks on the malicious torrent entry in the transfer manager – just clicking on the torrent link is ok.

New version can be downloaded from http://www.opera.com/download/.

Thanks to Juha-Matti.
Bojan

392 Posts
ISC Handler
May 22nd 2007

Sign Up for Free or Log In to start participating in the conversation!